SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).

SuperTokens.com

Is there any security reason that migrating all credentialed (email / password) users to a magic link wouldn't be advisable? (Coming from another auth provider with active customers)

Hey <@95630148711223296>. I don’t see any issues with this approach.

Magic link flow is essentially equivalent to asking users to reset their password and then login via the new password (from a security stand point). Therefore, I don’t see any security issues with this type of migration.